Category: security
Roundcube email flaw is being exploited, so patch now, US government warns
A vulnerability in the Roundcube email server platform is being actively exploited, the US government warns, urging its bodies to apply the patch and secure their instances sooner, rather than later. In a security advisory, the Cybersecurity and Infrastructure Security Agency (CISA) said that a persistent cross-site scripting (XSS) bug…
Read More
Deepfake threats are on the rise – new research shows worrying rise in dangerous new scams
Hackers are combining deepfake videos and emulators to bypass biometric security solutions and breach people’s online services, new research has claimed. A report from iProov has claimed the method’s use among criminals surged by 353% between the first and second halves of 2023. “Generative AI has provided a huge boost…
Read More
This new malware pretends to be a Visual Studio app update — then floods your device with malware and ransomware
A new malware has been found targeting macOS users and spreading as an update for a legitimate program, as it looks to steal people’s sensitive data, establish persistence on the vulnerable device and, ultimately, deploy ransomware. Cybersecurity researchers Bitdefender recently discovered the campaign, called RustDoor, and found it was built…
Read More
The US government says it has seized and taken down the dangerous Warzone RAT malware
Two hackers selling the Warzone RAT malware-as-a-service (MaaS) and offering customer support for their clients have been arrested, the US Department of Justice (DoJ) has announced. In a press release published on the DoJ website, it was said that two individuals, Daniel Meli (27) and Prince Onyeoziri Odinakachi (31), were…
Read More
Bad news for BitLocker users — its encryption can be cracked remarkable easily
If you have a Windows 10 Pro, or Windows 11 Pro device, with a dedicated external Trusted Platform Module (TPM), all of your encrypted data could easily be decrypted and read – all that’s needed is a little brainpower, a $10 Raspberry Pi Pico, and physical access to the target…
Read More
This evil Android malware has one devious USP — it doesn’t even need to be opened to start stealing all your photos and files
Security researchers have spotted new Android malware that doesn’t even need user interaction to launch. However, to become fully operational and run the processes it was designed to do – it still needs the victim’s approval. Cybersecurity researchers from McAfee said they observed a new version of XLoader, a known…
Read More